Application No. 10/705,771 

Preliminary Amendment dated March 18, 2004 

Amendments to the Specification: 

Please replace paragraph [0005] beginning on page 1 and continuing on page 2 with the 
following amended paragraph: 

[0005] The collection and use of biometric information such as photographic images, 
fingerprints, blood type, iris image, gene sequence, etc. are relatively well known. For 
instance, United States Patent No. 6,018,739 (the '"739 patent") for A DISTRIBUTED 
BIOMETRIC IDENTIFICATION SYSTEM AND ARCHITECTURE FOR RAPIDLY 
IDENTIFYING INDIVIDUALS USING FINGERPRINT AND PHOTOGRAPHIC DATA, 
issued to McCoy, et al. on January 25, 2000, provides an architecture having a centralized 
server coupled to a plurality of distributed client workstations by way of a wide area 
telecommunications network. The server and client workstations in the '739 patent further 
contain subsystems that cooperate to provide personnel identification services to users of the 
system. The distributed biometric identification system then rapidly identifies personnel 
based on the use of biometric or other unique identification data. The c 739[["]] patent further 
provides that this system may serve as an integrated, front-end automated fingerprint and 
photographic identification tool that supports comprehensive application processing and 
administrative systems, such as those of various government agencies. However, this and 
other know biometric information storage systems contain many deficiencies. 

Please replace paragraph [0006] on page 2 with the following amended paragraph: 

[0006] In an increasingly dangerous world, issues of security are becoming ever more 
important. In the airline and other travel industries, it is desired (and in fact now required by 
law) to verify the identities of current and prospective employees and to provide information 
as needed to perform background checks on these individuals. Furthermore, it would be 
advantageous to allow private and public employers to access biometric records on cleared 
individuals (i.e., those people previously positively identified and approved to work in 
sensitive transportation positions), thereby avoiding the need to re-clear people with every job 
change. The database further enables employers to quickly fill position with cleared workers 
without having to wait the sometimes[[-]] lengthy periods required for clearance of new 
workers. 

Please replace paragraph [0007] beginning on page 2 and continuing on page 3 with the 
following amended paragraph: 



2 



Application No. 10/705,771 

Preliminary Amendment dated March 18, 2004 

[0007] The reliable and accurate clearance of workers further imposes further requirements 
on a biometric storage and access system. In particular, the information contained in the 
system should be verified at time of submission to ensure its sufficiency as needed for various 
background checks. Otherwise, further delays and costs are incurred as the biometric 
information must be re z obtained, re-stored, [[and]] reforwarded, and retested in the various 
background checks. 

Please replace paragraph [0009] on page 3 with the following amended paragraph: 

[0009] The response to these and other needs, embodiments of the present invention 
provide a system and method that enable several functions. These enabled functions include 
receiving biometric information, verifying key information on the submittal, providing an 
accounting function for numerous submitting entities, storing the appropriate information, 
forwarding the information to the proper government agencies, updating the customer web 
site, providing a full customer service center^ and full accounting reconciliation for multiple 
government agencies. 

Please replace paragraph [0010] beginning on page 3 and continuing on page 4 with the 
following amended paragraph: 

[0010] A more complete understanding of the present invention and advantages thereof may 
be acquired by referring to the following description taken in conjunction with the 
accompanying drawings, in which like reference numbers indicate like features, and wherein: 
FIGS. 1^2 illustrates block diagrams of a biometric information storage system in accordance 

with an embodiment of the present invention; and 
FIG. 3 represents the steps in the operation of the biometric information storage system of 
FIGS. 1^2. 

Please replace paragraph [0015] beginning on page 5 and continuing on page 6 with the 
following amended paragraph: 

[0015] Once the electronically stored biometric information arrives, a quality subsystem 
120 automatically performs quality checks to verify the submission meets the EFTS. With 
fingerprints, the quality subsystem 120 scores the individual fingerprint images to achieve an 
average image score to identify likely unclassifiable submissions. If errors [[may be]] are 
detected, automatic corrections may be applied [[to those than can be corrected]] without 
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contacting the submitting employer. Those submissions requiring additional information may 
be stored,, and the submitting employer may be automatically notified, generally by e-mail, of 
the error. Manual corrections may be applied as needed to address the detected errors or 
deficiencies. Where electronically stored biometric information does not satisfy the EFTS, 
the information may be modified, converted, enhanced, etc. using know image and data 
processing techniques. The quality subsystem may be developed using NISTPack source 
code by Aware, Inc., and multiple processes may be run in order to process a submittal. For 
more information, please refer to http://www.aware.com/products/compressionnistpack.html . 

Please replace paragraphs [0016] and [0017] on page 6 with the following amended 
paragraphs: 

[0016] Referring now back to FIG. 1, an employer may forward an inked card 123 (or other 
tangible representation of biometric information such as a photograph or biological sample). 
The inked cards 123 are opened 2 and the opened cards 122 are reviewed to verify that all 
mandatory fields [[may be]] are filled out [[and that]] as needed for completion of all 
processing. The inked cards may be then optically scanned and converted to an electronic file 
121 in the EFTS format, and transmitted into the Clearinghouse system as an electronic 
submission of an inked card using Simple Mail Transf e r Protocol ( SMTP). When received 
electronically, the database storing the original manually entered data may be updated as 
"EFTS Received,," and a full reconciliation of processed inked cards may be maintained. 
From that point forward, inked cards may be handled in the same manner as electronic 
submissions. 

[0017] The employers may further access certain portions of the database 100 to view the 
biometric data of potential employees [[for that employer]]. To preserve confidentiality, 
access to the information in the database 100 may be limited to data entries associated with 
[[that]] an accessing employer. 

Please replace paragraphs [0018], [0019] and [0020] on page 7 with the following amended 
paragraphs: 

[0018] Access to the database 100 is typically provided by a secure website served over the 
Internet. In one embodiment, the website may be continually updated with information on the 
status of submittals. For instance the site may be updated once a submittal [[may be]] is 
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entered into the system 10, when the data is sent to the regulatory agency 150, when the 
regulatory agency 150 acknowledges receipt of the submittal, [[and]] or when the results 
[[may be]] are posted. All updates may be processed automatically^ either by the various 
subsystems described herein or by special programs designed to take data sent to and [[from 
the]] from the regulatory agency 150. Thus, the submitting entities may log into the supplier 
access subsystem 110, register their applicants, make payment (described in greater detail 
below), and submit fingerprints (or other biometric data) and release paperwork. 

[0019] Embodiments of the present invention may also have the ability to return results to 
submitting entities, such as a Pass/Fail status. For instance, the submitting entities logging 
onto the supplier access subsystem 110 may [[further]] receive [[a]] Pass/Fail results. The 
Submitting entities can also track the progress of their applicant's fingerprints and paperwork 
as well. 

[0020] If an applicant has been previously printed by another employer and favorably 
adjudicated by the regulatory agency 150, those Pass results may also be shared between 
employers using the supplier access subsystem 1 10. 

Please replace paragraph [0021] beginning on page 7 and continuing on page 8 with the 
following amended paragraph: 

[0021] A copy of the original message may be stored in the data repository lOOi and a copy 
of the submitted biometric data may be forwarded electronically through the regulatory access 
subsystem 140 to the regulatory agency 150. In turn, the regulatory agency 150 forwards the 
biometric data to the policing agency 151 as needed to perform various background and 
clearance checks. The regulatory agency 150 and/or the policing agency 151 may 
acknowledge receipt of the submittal through the regulatory access subsystem 140. 

Please replace paragraphs [0022] and [0023]] on page 8 with the following amended 
paragraphs: 

[0022] Once verification [[may be completed]] is completed , processing and billing 
information, along with individual identifying information may be automatically entered into 
the accounting sub-system. If the submitting entity has enough funds available to process the 
submitted message [[submitted]], the submitting entity's account [[may be]] is debited. 
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[0023] Where an inked card 123 is provided, the open card 122 may be examined to verify 
that billing information is correct. The processing and billing information, along with 
individual identifying information^ may be manually keyed into the billing subsystem 160. 

Please replace paragraph [0024] beginning on page 8 and continuing on page 9 with the 
following amended paragraph: 

[0024] The billing subsystem 160 may also provide a monthly reconciliation to the 
regulatory agency 150 for submittals. For instance, [[each week,]] the billing subsystem 160 
may send a weekly deposit to the regulatory agency 150 for items processed during the week. 
The regulatory agency 150 may receive periodic invoices (such as monthly) from the policing 
agency 151 for submittals processed through the biometric storage system 10. Embodiments 
of the present invention reconcile the invoice with the deposits[[,]] and store this data in an 
accounts database 161 as reconciliations 162. In the same way, the data used to form invoices 
may be stored as input data 163 and the deposits may be stored as collective payments 164. 

Please replace paragraphs [0025] and [0026]] on page 9 with the following amended 
paragraphs: 

[0025] Referring now to FIG. 2, a network 200 presenting a particular implementation of 
the biometric storage system 10 is now provided. It should be appreciated that the described 
system is provided merely exemplary and is not meant to limit the biometric data system 10 
in anyway. Specifically, many known ways are currently known for establishing various 
databases and secure connections, as generally described above. 

[0026] Returning to FIG. 2, a biometric information supplier 230 may connect to the 
biometric data server 240 through a physical network [[of]] consisting of several Primary 
Rate Interface (PRI) lines for dial-in users. Each PRI may be capable of 23 simultaneous 
connects^ and with three PRIs, the biometric data server 240 [[has]] may have 69 dial-in lines. 
Embodiments of the present invention may also have 200 VPN connections available for 
[[user]] users who wish to connect in this fashion. The Internet connection may be subset of 
a main connection, such as Tl connections running Border Gateway Protocol (BGP). BGP 
allows all the lines to act as one. This feature provides more total bandwidth, but also gives a 
layer of redundancy for the external connection, since the three lines represent three separate 
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upstream Internet Service Providers. The network may be a 100BaseT switched network, and 
PCs and servers may have either 100BaseT or lOOOBaseT connections. 

Please replace paragraph [0027] beginning on page 9 and continuing on page 10 with the 
following amended paragraph: 

[0027] Continuing with FIG. 2, the PRI lines may be connected into two routers (such as 
Cisco model 3640). The PRI lines may be from two different telecommunications providers 
and may be in a hunt group so that the end user dials one phone number and so that the call 
may be answered by one of the available modems. The routers may be configured so that 
traffic from either router [[may be]] is routed to a central location^ giving the biometric data 
server 240 redundancies in both hardware and in the PRI. Embodiments of the present 
invention may have redundant VPN concentrators (such as Cisco model 3015), which can 
handle 200 simultaneous connections. The VPN concentrators may be augmented by a router 
(such as Cisco model 2621) to handle internal traffic from the VPN clients. This equipment, 
as well as the network servers and workstations, may be connected [[into]] to enhanced 
switches (such as Cisco model 3550). These enhanced switches may be OSI layer 3 switches 
capable of a high rate of throughput and faster switching. Embodiments of the present 
invention may have a Terminal Access Controller Access Control System (TACACS) and a 
Remote Authentication Dial-In User Service (RADIUS) server for dial-in and VPN 
authenticaiton. TACACS allows a remote access server to communicate with an 
authentication server [[in order]] to determine if the user is authorized to [[has]] access [[to]] 
the network. RADIUS is an authentication and accounting system used by many Internet 
Service Providers (ISPs). In particular, a username and password provided by a user are 
passed to a RADIUS server, which checks [[that]] whether the information is correct[[,]] and 
which then authorizes access to the ISP system. 

Please replace paragraph [0028] beginning on page 10 and continuing on page 1 1 with the 
following amended paragraph: 

[0028] The biometric data server 240 may be a commercially available product such as Dell 
PowerEdge servers or HP/Compaq Proliant servers. These dual-processor based systems 
have 4 GB of RAM and may be running Microsoft Windows 200 Advanced Server. All 
servers and arrays have redundant power supplies. The biometric data server 240 may further 
include the following components: (1) a Mail/ Application server operating with Microsoft 
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Exchange 2000; (2) a database server using Microsoft SQL Server 2000, with an attached 1.8 
TB RAID-5 array; (3) a Web/ Application server with Apache 1.3.27 and Macromedia 
ColdFusion Server v 6.1; (4) a backup server running, for example, Veritas Backup Exec 
connected to a 8 TB tape. storage system; and (5) a Domain Controller running Microsoft 
Active Directory. 

Please replace paragraph [0030] on page 1 1 with the following amended paragraph: 

[0030] Continuing with FIG. 2, the present invention may include Internet and intranet 
websites 241, such as those developed using Macromedia ColdFusion 6.1. The websites may 
be populated with information contained in multiple SQL databases, such as the above- 
described biometric database 100 and the accounts database 161. Thus, there maybe also 
databases for the submittals processing information, for the accounting information, and for 
the middleware between the submittal processing and the accounting system. 

Please replace paragraph [0033] on page 12 with the following amended paragraph: 

[0033] An inked card may require manual intervention. When the inked cards arrive, they 
may be taken to a secure environment to be opened and sorted into batches. The batches may 
be based on the supplier's customer ED and the billing type. An operator will enter the basic 
information necessary for tracking into the database 100, and the batch may be verified and 
submitted, as described above. The cards may be then scanned and submitted as an electronic 
submission. When received, the database 100 may be updated to indicate that the inked card 
was received electronically. From this point forward, the submission may be processed as an 
electronic submission, in the above-described manner. 

Please replace paragraphs [0034] and [0035]] on page 13 with the following amended 
paragraphs: 

[0034] Continuing with step 320, the script in the biometric data server 240 detects the new 
record in the temporary table of the biometric database 100. This script may make certain 
prescribed changes, including error corrections, to one or more of several fields in order to 
bring the record's format into compliance with government standards. Next, the record may 
be transcribed into a permanent archive database table. Finally, the record's flag may be 
changed to indicate the record [[may be]] is ready for mailing. 
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[0035] In step 330, another program in the biometric data server 240 known as Mail-Out- 
Module (MOM) scans the database 100 for completed records. If the completed record has 
been identified as an erroneous record, the MOM [[will notify]] notifies the customer 230 of 
the error and writes the record into a special errors table of the database 100. If the record 
[[passed]] passes all verifications, MOM assembles the completed database record into a 
standard fingerprint submission file and performs a final verification to ensure that 
modifications made by the script have not rendered the file invalid. MOM then stores a copy 
in a permanent archive and submits the record to a regulatory agency 250. 

Please replace paragraph [0036] beginning on page 13 and continuing on page 14 with the 
following amended paragraph: 

[0036] At the same time, another SQL-stored procedure searches the biometric database 
100 for any new records. If it sees a new record, the procedure checks the accounting system 
160 to verify that the customer has enough funds to process the submittal. Each customer has 
an ED., and there may be two billing types for each customer. If funds [[may be]] are 
available, the process will update the biometric database 100 to show the submittal has 
processed. It will also create a batch in the accounting system 160[[,]] if necessary^ or add 
this record to an existing batch. It will also update a history table, which tracks all 
transactions , along with [[and]] the associated supplier and personal identifiers for that 
transaction. This process may run periodically, such as every ten minutes. 

Please replace paragraphs [0038], [0039] and [0040] on page 14 with the following amended 
paragraphs: 

[0038] The submitted biometric data may be forwarded to the regulatory agency 250 in step 
330 by e-mail, and the email may be sent over an encrypted link. This process may run 
frequently, such as every three minutes. The regulatory agency 250 may return confirmation 
of the received biometric data (step 340) and [[the]] forward the data to a policing agency 260 
for processing and examination (step 350). Typically, these transactions occur through the 
Internet 220. 

[0039] Once processed, the regulatory agency 250 receives and returns results 251 from the 
policing agency 260. In step 360, the biometric data server 240 receives the results 251 and 
updates the website 25 1 to reflect the results 25 1 . The supplier 230 may then access the 
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website 241 to determine the status of the biometric processing [[the]] to determine the 
results of that processing, step 370. 

[0040] Embodiments of the present invention have both an intranet for use by internal 
employees and an Internet site for access by customers/suppliers 230. All web interfaces may 
written in Macromedia ColdFusion 6.1 (or similar application) and may utilize database 
management system such as Microsoft SQL Server 2000 database for information storage. 

Please replace paragraph [0044] beginning on page 15 and continuing on page 16 with the 
following amended paragraph: 

[0044] Individual clients 230 can access client-specific information as well. The security 
contact for each client may be allowed to log into the site and get a status of all records 
submitted. The can also see their account balance and a summary of how the money was 
spent. They may be able to download small sections (up to about 1000 submissions) in 
Microsoft Excel format to load onto their local systems for further processing. The client 230 
may be able to contact the biometric data server 240,, either by phone or through the Internet 
site. Each electronic contact request may be logged into a database and answered by a 
customer service representative through the intranet. 
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